BPF Struct Argument Support Vulnerability in Linux Kernel

CVE-2025-40151

What is CVE-2025-40151?

A vulnerability has been identified in the Linux Kernel affecting the BPF (Berkeley Packet Filter) subsystem, where support for struct arguments in trampoline programs is absent. This limitation leads to system instability, characterized by kernel paging request failures and potential resource starvation issues due to unhandled operations during BPF selftests. During the execution of certain BPF programs, such as 'tracing_struct', a kernel panic may occur, which can compromise system operations and lead to degraded performance or crashes. Developers and system administrators are urged to apply the latest updates to mitigate these risks.

References